qnap

613 tracked vulnerabilities.

CVE-2025-58467 MEDIUM
Qsync Central <5.0.0.4 - Path Traversal
Feb 11, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-58466 MEDIUM
QNAP QTS and QuTS hero - Use of Uninitialized Variable
Feb 11, 2026
CVSS 4.9
EPSS 0.00
CVE-2025-57713 HIGH
File Station 5 <5.5.6.5166 - Info Disclosure
Feb 11, 2026
CVSS 7.5
EPSS 0.00
CVE-2025-57711 MEDIUM
Qsync Central 5.0.0.0-5.0.0.3 - Authenticated Denial of Service via Resource Exhaustion
Feb 11, 2026
CVSS 4.9
EPSS 0.00
CVE-2025-57710 MEDIUM
Qsync Central 5.0.0.0-5.0.0.3 - Authenticated Denial of Service via Resource Exhaustion
Feb 11, 2026
CVSS 4.9
EPSS 0.00
CVE-2025-57709 HIGH
Qsync Central 5.0.0.0-5.0.0.3 - Authenticated Heap-based Buffer Overflow
Feb 11, 2026
CVSS 8.1
EPSS 0.00
CVE-2025-57708 MEDIUM
Qsync Central 5.0.0.0-5.0.0.3 - Authenticated Denial of Service via Resource Exhaustion
Feb 11, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-57707 HIGH
File Station 5 <5.5.6.5166 - Code Injection
Feb 11, 2026
CVSS 8.8
EPSS 0.00
CVE-2025-54170 MEDIUM
Qsync Central 5.0.0.0-5.0.0.3 - Authenticated Out-of-bounds Read
Feb 11, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-54169 MEDIUM
QNAP File Station 5.5.6.4691-5.5.6.5067 - Authenticated Out-of-bounds Read
Feb 11, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-54163 MEDIUM
QNAP File Station 5.5.6.4691-5.5.6.5165 - Authenticated Denial of Service via NULL Pointer Dereference
Feb 11, 2026
CVSS 4.9
EPSS 0.00
CVE-2025-54162 MEDIUM
QNAP File Station 5.5.6.4691-5.5.6.5067 - Authenticated Path Traversal
Feb 11, 2026
CVSS 4.9
EPSS 0.00
CVE-2025-54161 MEDIUM
QNAP File Station 5.5.6.4691-5.5.6.5067 - Authenticated Denial of Service via Resource Exhaustion
Feb 11, 2026
CVSS 4.9
EPSS 0.00
CVE-2025-54155 MEDIUM
QNAP File Station 5.5.6.4691-5.5.6.5017 - Authenticated Denial of Service
Feb 11, 2026
CVSS 4.9
EPSS 0.00
CVE-2025-54152 MEDIUM
Qsync Central <5.0.0.4 - Memory Corruption
Feb 11, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-54151 MEDIUM
Qsync Central 5.0.0.0-5.0.0.3 - Denial of Service via Uncontrolled Resource Consumption
Feb 11, 2026
CVSS 5.5
EPSS 0.00
CVE-2025-54150 MEDIUM
Qsync Central 5.0.0.0-5.0.0.3 - Authenticated Denial of Service via Uncontrolled Resource Consumption
Feb 11, 2026
CVSS 5.5
EPSS 0.00
CVE-2025-54149 MEDIUM
Qsync Central 5.0.0.0-5.0.0.3 - Authenticated Denial of Service via Uncontrolled Resource Consumption
Feb 11, 2026
CVSS 5.5
EPSS 0.00
CVE-2025-54148 MEDIUM
Qsync Central 5.0.0.0-5.0.0.3 - Denial of Service via NULL Pointer Dereference
Feb 11, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-54147 MEDIUM
Qsync Central 5.0.0.0-5.0.0.3 - Authenticated Denial of Service via NULL Pointer Dereference
Feb 11, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-54146 MEDIUM
Qsync Central 5.0.0.0-5.0.0.3 - Authenticated Denial of Service via NULL Pointer Dereference
Feb 11, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-53598 MEDIUM
Qsync Central 5.0.0.0-5.0.0.3 - Authenticated Denial of Service via NULL Pointer Dereference
Feb 11, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-52870 HIGH
Qsync Central 5.0.0.0-5.0.0.3 - Authenticated Heap-based Buffer Overflow
Feb 11, 2026
CVSS 8.1
EPSS 0.00
CVE-2025-52869 HIGH
Qsync Central 5.0.0.0-5.0.0.3 - Authenticated Heap-based Buffer Overflow
Feb 11, 2026
CVSS 8.1
EPSS 0.00
CVE-2025-52868 HIGH
Qsync Central 5.0.0.0-5.0.0.3 - Authenticated Heap-based Buffer Overflow
Feb 11, 2026
CVSS 8.1
EPSS 0.00
Products
qts 272 quts_hero 223 qsync_central 62 qutscloud 62 file_station 48 photo_station 26 video_station 15 media_streaming_add-on 13 music_station 13 qurouter 12 helpdesk 11 qumagie 10 qvr 10 qulog_center 8 nas_proxy_server 7 q\'center 7 hybrid_backup_sync 6 notes_station_3 6 qvr_pro 6 license_center 5 multimedia_console 5 qunetswitch 5 qvr_elite 5 qvr_guard 5 qes 4 download_station 3 qcalagent 3 qufirewall 3 qvp-21a_firmware 3 qvp-41a_firmware 3
Quick Filters
Critical CVEs With Exploits In CISA KEV